Description

<ul> <li>Location - ACT, VIC</li> <li>Security Clearance - Australian Citizens with NV1 Clearance</li> <li>Length of Contract - 12 months</li> <li>Closing Date - 03/11/2025</li> </ul> <strong>Key duties and responsibilities</strong><strong>:</strong><br> <ul> <li>Assess Australian Government entities to determine the effectiveness of both prevention and detection security controls.</li> <li>Execute tools to simulate well known adversary tradecraft to perform privilege escalation and lateral movement.</li> <li>Identify weaknesses in common Microsoft technologies such as Active Directory.</li> <li>Assess and identify vulnerabilities in web applications and APIs.</li> <li>Development and automation of custom tools.</li> </ul> <strong>Essential Criteria:</strong>&nbsp;<br> <ul> <li>Demonstrated minimum 5 years' experience in infrastructure and/or web application penetration testing.</li> <li>Demonstrated experience with assessing environments and systems against the Australian government's Information Security Manual.</li> <li>Demonstrated experience in assessing and exploiting common vulnerabilities found in enterprise networks and infrastructure (e.g. Microsoft Active Directory, Azure AD).</li> <li>Demonstrated experience in assessing, identifying and exploiting known and common vulnerabilities in web applications and supporting infrastructure.</li> </ul> <strong>Desirable Criteria:</strong>&nbsp;<br> <ul> <li>Possess professional certifications such as OCSP, GPEN, OSWA, GWAPT, OSWE, OSCE.</li> <li>Experience with scripting languages (PowerShell, Python, Javascript etc).</li> <li>Experience in developing security tools across varying system architectures; exposure to testing enclaved networks and classified systems.</li> <li>Demonstrated practical knowledge of web application penetration testing, including fuzzing, scripting, and application logic exploitation.</li> </ul> <strong>Additional Criteria:</strong><br> <ul> <li>DSS - 2.4 Systems and Software Engineering - Testing and Evaluation (including verification and</li> <li>validation) - L3</li> <li>SFIA Skill Code - Penetration testing (PENT) - L4</li> </ul> <strong>Please contact Melody on 02 4086 8973 or [email protected] or simply click apply to submit your application&nbsp;</strong><br>&nbsp;<br><strong>"We warmly welcome applications from individuals of all backgrounds, including First Nations Australians, Australian Defence Force and First Responder veterans, women in STEM, and people of all abilities, including those registered with the NDIS."</strong><br>&nbsp;<br><em>ARISZINC GROUP offers an end-to-end service approach with unique combination of expertise in recruiting, IT consulting and payroll services in the Canberra, Sydney and Brisbane markets. We champion people first, empowering them to take charge of their own aspirations and professional futures.</em><br>&nbsp;<br><em>ARISZINC GROUP encourages diversity and welcomes applications from Indigenous Australians, people from a diverse range of backgrounds, including people living with a disability.</em>

Benefits

Perks in the office